WO2003085959A1 - Prepaid pay television system - Google Patents

Prepaid pay television system Download PDF

Info

Publication number
WO2003085959A1
WO2003085959A1 PCT/IB2003/001319 IB0301319W WO03085959A1 WO 2003085959 A1 WO2003085959 A1 WO 2003085959A1 IB 0301319 W IB0301319 W IB 0301319W WO 03085959 A1 WO03085959 A1 WO 03085959A1
Authority
WO
WIPO (PCT)
Prior art keywords
credit
user
amount
management center
message
Prior art date
Application number
PCT/IB2003/001319
Other languages
French (fr)
Inventor
Marco Sasselli
Original Assignee
Nagravision Sa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to DK03710108T priority Critical patent/DK1493268T3/en
Priority to US10/510,834 priority patent/US7742600B2/en
Application filed by Nagravision Sa filed Critical Nagravision Sa
Priority to DE60318416T priority patent/DE60318416T2/en
Priority to CA2481750A priority patent/CA2481750C/en
Priority to JP2003583016A priority patent/JP4331620B2/en
Priority to AU2003214529A priority patent/AU2003214529B2/en
Priority to EP03710108A priority patent/EP1493268B1/en
Priority to BRPI0309249-6A priority patent/BRPI0309249B1/en
Priority to MXPA04009734A priority patent/MXPA04009734A/en
Priority to KR1020047016114A priority patent/KR100921843B1/en
Priority to IL16427003A priority patent/IL164270A0/en
Publication of WO2003085959A1 publication Critical patent/WO2003085959A1/en
Priority to IS7463A priority patent/IS2579B/en
Priority to HR20040934A priority patent/HRP20040934B1/en
Priority to TNP2004000202A priority patent/TNSN04202A1/en
Priority to HK05105132A priority patent/HK1073039A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • G06Q20/127Shopping or accessing services according to a time-limitation
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F17/00Coin-freed apparatus for hiring articles; Coin-freed facilities or services
    • G07F17/0014Coin-freed apparatus for hiring articles; Coin-freed facilities or services for vending, access and use of specific services not covered anywhere else in G07F17/00
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0866Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means by active credit-cards adapted therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2543Billing, e.g. for subscription services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • H04N21/26606Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing entitlement messages, e.g. Entitlement Control Message [ECM] or Entitlement Management Message [EMM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/418External card to be used in combination with the client device, e.g. for conditional access
    • H04N21/4181External card to be used in combination with the client device, e.g. for conditional access for conditional access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/418External card to be used in combination with the client device, e.g. for conditional access
    • H04N21/4185External card to be used in combination with the client device, e.g. for conditional access for payment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4623Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/472End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content
    • H04N21/47211End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content for requesting pay-per-view content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/478Supplemental services, e.g. displaying phone caller identification, shopping application
    • H04N21/47805Electronic banking
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/61Network physical structure; Signal processing
    • H04N21/6156Network physical structure; Signal processing specially adapted to the upstream path of the transmission network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/162Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
    • H04N7/163Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only

Definitions

  • the present application relates to the field of conditional access service receivers / decoders, in particular a system for accessing an encrypted data stream with accounting per unit of time.
  • a stock market information service such as a stock market information service, weather forecast, general television, a sporting event or other.
  • This content can be broadcast on user units such as a pay TV decoder, a computer or even a mobile phone, a "palm-top", a PDA, a radio, a television, a multimedia terminal.
  • the digital flow is encrypted in order to be able to control its use and to define conditions for such use.
  • This encryption is. carried out using Control Words which are changed at regular intervals (between 5 and 30 seconds) in order to deter any attack aimed at finding such a control word.
  • the user unit can decrypt the flow encrypted by a control word, the latter is sent to it independently of the flow in a control message (ECM) encrypted by a key specific to the transmission system between the management center (CAS) and the user unit security module.
  • ECM control message
  • CAS management center
  • SC security module
  • This module can be either of the removable type or directly integrated into the user unit processing signals such as a pay television decoder or a DAB receiver. Indeed, the operation of the invention allows the use of a user unit without a removable security module.
  • the subscription makes it possible to define a right associated with one or more broadcasting channels and allows the user to obtain these decrypted channels if the right is present in its security module.
  • the security module includes a credit which is debited according to the actual consumption of the user. For example, a unit will be debited every minute at this credit regardless of the channel viewed.
  • the accounting unit it is possible to vary the accounting unit, either in duration or in the value of the time allocated, or even by combining these two parameters to adapt invoicing to the type of product transmitted.
  • the control word is returned to the user unit in decrypted form only when the comparison is positive.
  • a first solution using an electronic purse is described in document US 6,282,293.
  • the smart card contains a credit which is debited when accessing encrypted content.
  • the accounting information is contained in the broadcast signal and allows this accounting.
  • the user unit calls a management center to send the consumed events and recharge the credit according to the terms agreed with this user, for example via a credit card.
  • the aim of the present invention is to provide an innovative way of offering pay TV access to a large clientele while drastically reducing the costs associated with managing subscribers.
  • a system comprising a management center transmitting a data stream encrypted by control words (CW), these control words being included in control messages (ECM), this data stream being intended to be received by or less a user unit linked to a security module identified by a unique address, this security module containing a credit which is decremented according to the purchase of products or the consumption of the data flow, characterized in that the security unit comprises means for decreasing the credit by an amount corresponding to a product or by an amount corresponding to a duration, this amount and / or this duration being defined in the control message (ECM) or in a management message (EMM), the user having means independent of the user unit for communicating to the management center an identifier representative of the unique number and a value code representing a credit recharge amount, the management comprising means for processing and verifying the value code and for transmitting to the security module, an encrypted message comprising the unique address and the amount for recharging the credit t.
  • CW control words
  • ECM control messages
  • the means for recharging the credit are independent of the user unit while keeping the management center as supervisor of the recharging operations.
  • the transmission of this VC value code eliminates billing to the user because this value code already contains information proving that the user has acquired the right to this value.
  • the management center processes the customer's credit independently (billing, credit card) and transmits the recharge instruction to him via the modem.
  • the value code is transmitted according to one of the modes described below and the recharging instruction is sent in the stream of encrypted data, in a management message for example.
  • This value code (VC) can take several forms:
  • a unique number is contained on a scratch card and defines a prepaid credit. These cards are sold in stores and include a part hidden by a layer easy to remove with the nail or a coin. The number thus revealed is a unique number generated by a cryptographic system, that is to say that it must comply with strict rules as to its format. It is therefore not possible (or with very low probabilities) to generate such a number which is recognized as valid by the management center. This number is associated with a value which is the one that the user paid to acquire this card. Once this number has been used, it cannot be presented again to the management center.
  • a bank account or credit card number and the top-up amount According to the terms accepted by the management center and in agreement with the banking organizations, the user can transmit his bank card number and the desired amount to be debited from his account.
  • a removable security module and to insert it into a terminal for this purpose. This terminal allows you to either receive cash (tickets for example) or read a bank card (or even a credit card).
  • the terminal contacts the management center and a message to recharge the credit is sent to the terminal which transfers it to the security module.
  • the security module Once the amount desired by the user has been duly verified (either by the tickets inserted in the slot of the machine, or by the authorization of the banking organization), the terminal contacts the management center and a message to recharge the credit is sent to the terminal which transfers it to the security module. During this operation, it is possible to collect information on the consumption of the user, information which is stored in its security module.
  • the user communicates the value code to the management center accompanied by the identifier of his user unit.
  • the unique number of the security module will be considered as the number of the assembly formed by the user unit and the security unit.
  • this unique number is generally a number with a large number of digits which are necessary for the system (creation date, version etc.) but not essential to identify a unit. This is why it is planned to display on the user unit (STB) a shortened number which is sufficient to differentiate each unit.
  • STB user unit
  • the management center checks that this new number is indeed unique and associates this number with the unique number (UA). Therefore, it will be possible to replace the identification of the entire user with the telephone number.
  • the user can use a voice server and a conventional telephone with DTMF sending signals.
  • a voice server After buying a value card (solution 1 of the value code), he calls the voice server in the management center. He is invited to enter the identifier number and the value code affixed to the card.
  • This operation takes little time; the management center verifies the conformity of the value code and the identifier and, if this data is correct, prepares a message for this user unit.
  • the message is transmitted by the broadcasting channel in encrypted form and only the security module has the means to decrypt this message.
  • Each security module receiving this message checks whether the unique number contained in the message corresponds to its number and, if not, ignores it.
  • the amount of credit contained in this message is added to the remaining credit.
  • management center should be understood in the broad sense. Indeed, in practice this entity is subdivided into several modules which can be located in different places.
  • ECM control message encryption unit
  • EMM management message encryption unit
  • the value code processing unit can be located in a banking establishment if we consider variant 2, namely the connection with a credit center or on the premises of a telephone operator if we consider the variant 3, namely the sending of a short message by his mobile phone.
  • a secure link is used to inform the encryption unit of management messages and to send the credit recharge message to its recipient. The user has the means to display the remaining credit on his television at any time.
  • SMS simple short message
  • - impulsive subscription the user decides to use all or part of his credit to buy a subscription to one or more channels.
  • a new right is created in the unit for the reception of said channels without a new action on its credit being necessary.
  • the user can decide to buy a program or a group of programs (a series or a retrospective) and a corresponding right is created in the security unit.
  • the user can decide to pay only what he actually consumes and the credit is consumed according to a payment method per unit of time.
  • the first two modes are preferably managed by management messages (EMM) because they create a right inside the security module. While the third mode can only work with control messages (ECM) in which the value of the unit is placed as well as the duration acquired.
  • EMM management messages
  • ECM control messages
  • a control message ECM
  • ECM control message
  • the rights are checked according to a hierarchy starting from the widest right to the narrowest. So for example we check first if the user has a subscription for these rights, then, if not if a right for impulse purchase exists and as a last resort, we will debit the credit per unit of time.
  • FIG. 1 an example of implementation is illustrated. This is variant 3 of the value code.
  • the management center (CG) is illustrated by several elements such as a telephone operator (TO), a data encryption module (ENC) (DTA), an encryption key control module (CW) ) in charge of generating the control messages (ECM) and a management module (EMME) in charge of generating the recharging messages from the credit to the security units.
  • TO telephone operator
  • EEC data encryption module
  • CW encryption key control module
  • EMME management module
  • Each decoder (STB) comprises a security module (SC) which stores the credit (CR) of the user.
  • SC security module
  • the user uses his mobile telephone (TP) to transmit this unique number by connection with the telephone operator (TO).
  • This operator receives this information and transmits it to the management module (EMME) with the user's telephone number.
  • the validity of this number is checked using a database (DB) of valid numbers and if this is the first use of this number, the corresponding value (TA) is returned by the database. This number is then irrevocably invalidated.
  • the management module deduces therefrom the unique number (UA) of the security unit and a corresponding message can be sent by the conventional transmission channel (cable, radio, etc.). This message is usually repeated for several days.
  • the security module includes means for executing the message only once. This is ensured by an identifier of the message which is also encrypted by transmission keys. This identifier is stored in the security unit as soon as such a message is received and executed. The security unit now expects a different or larger identifier.
  • the database keeps track of the amount recharged for each security unit. It is possible to check the consumption of each unit and detect fraud attempts. In addition, the sum of the reloaded amounts must always be less than the sum of the value cards in circulation.

Abstract

The invention aims at providing a novel manner of offering to a wide range of customers access to pay television while reducing costs related to subscriber management. This is achieved through a system comprising a management center (CAS) transmitting a data flow encrypted with control words (CW), said control words being included in control messages (ECM), said data flow being designed to be received by at least one user unit (STB) connected to a security unit (SC) identified by a unique address (UA), said security unit (SC) containing a credit (CR) which is decremented depending on the purchase of products or the consumption of the data flow. The invention is characterized in that the security unit comprises means for decrementing the credit by an amount (M1) corresponding to a product or by an amount (M2) corresponding to a time interval (T), said amount (M1, M2) and/or said time interval (T) being defined in the management message (ECM) or in a management message (EMM), the user being provided with means for communicating to the management center (CAS) an identifier representing the unique number (UA) and value code representing an amount (TA) for replenishing the credit (UA), the management center comprising means for processing and verifying the value code (VC) and for transmitting to the security unit (SC) an encrypted message comprising the unique address (UA) and the amount (TA) for replenishing the credit (CR).

Description

SYSTÈME DE TÉLÉVISION À PÉAGE À PRÉ-PAIEMENT PRE-PAY TOLL TV SYSTEM
La présente demande concerne le domaine des récepteurs/décodeurs de services à accès conditionnel, en particulier un système d'accès à un flux de données encryptées à comptabilisation par unité de temps.The present application relates to the field of conditional access service receivers / decoders, in particular a system for accessing an encrypted data stream with accounting per unit of time.
Comme exemple de tel flux de données, on entend un service d'informations boursière, de météo, de télévision généraliste, d'un événement sportif ou autres. Ces contenus peuvent être diffusés sur des unités d'utilisateurs tels qu'un décodeur de télévision à péage, un ordinateur voire un téléphone portable, un "palm-top", un PDA, une radio, une télévision, une borne multimédia.As an example of such a data flow, we mean a stock market information service, weather forecast, general television, a sporting event or other. This content can be broadcast on user units such as a pay TV decoder, a computer or even a mobile phone, a "palm-top", a PDA, a radio, a television, a multimedia terminal.
Le flux numérique est encrypte afin de pouvoir en contrôler l'utilisation et de définir des conditions pour une telle utilisation. Cette encryption est. réalisée grâce à des mots de contrôle (Control Words) qui sont changés à intervalle régulier (entre 5 et 30 secondes) afin de dissuader toute attaque visant à retrouver un tel mot de contrôle.The digital flow is encrypted in order to be able to control its use and to define conditions for such use. This encryption is. carried out using Control Words which are changed at regular intervals (between 5 and 30 seconds) in order to deter any attack aimed at finding such a control word.
Pour que l'unité d'utilisateur puisse décrypter le flux encrypte par un mot de contrôle, ce dernier lui est envoyé indépendamment du flux dans un message de contrôle (ECM) encrypte par une clé propre au système de transmission entre le centre de gestion (CAS) et le module de sécurité de l'unité d'utilisateur. En effet, les opérations de sécurité sont effectuées dans un module de sécurité (SC) qui est généralement sous la forme d'une carte à puce, réputée inviolable. Ce module peut être soit de type amovible ou directement intégré à l'unité d'utilisateur traitant des signaux tel qu'un décodeur de télévision à péage ou un récepteur DAB. En effet, le fonctionnement de l'invention autorise l'utilisation d'une unité d'utilisateur sans module de sécurité amovible.So that the user unit can decrypt the flow encrypted by a control word, the latter is sent to it independently of the flow in a control message (ECM) encrypted by a key specific to the transmission system between the management center ( CAS) and the user unit security module. Indeed, the security operations are carried out in a security module (SC) which is generally in the form of a smart card, deemed to be inviolable. This module can be either of the removable type or directly integrated into the user unit processing signals such as a pay television decoder or a DAB receiver. Indeed, the operation of the invention allows the use of a user unit without a removable security module.
Lors de la décryption du message de contrôle (ECM), il est vérifié, dans le module de sécurité (SC), que le droit pour accéder au flux considéré est présent. Ce droit peut être géré par des messages d'autorisation (EMM) qui charge un tel droit dans l'unité (SC). D'autres possibilités sont également possibles tels que l'envoi de clés de décryptage. La comptabilisation de l'utilisation de tels contenus est aujourd'hui basée sur le principe de l'abonnement, de l'achat d'événements ou du paiement par unité de temps.During the decryption of the control message (ECM), it is verified, in the security module (SC), that the right to access the flow considered is present. This right can be managed by authorization messages (EMM) which load such a right in the unit (SC). Other possibilities are also possible such as sending decryption keys. Accounting for the use of such content is today based on the principle of subscription, purchase of events or payment per unit of time.
L'abonnement permet de définir un droit associé à un ou des canaux de diffusion et permet à l'utilisateur d'obtenir ces canaux décryptés si le droit est présent dans son module de sécurité.The subscription makes it possible to define a right associated with one or more broadcasting channels and allows the user to obtain these decrypted channels if the right is present in its security module.
Parallèlement, il est possible de définir des droits propres à un contenu, tel qu'un film ou un match de football. L'utilisateur peut acquérir ce droit (achat par exemple) et ce contenu sera spécifiquement géré par ce droit. Cette méthode est connue sous l'appellation "pay-per-view" (PPV).At the same time, it is possible to define rights specific to content, such as a film or a football match. The user can acquire this right (purchase for example) and this content will be specifically managed by this right. This method is known as "pay-per-view" (PPV).
Pour ce qui concerne le paiement par unité de temps, le module de sécurité comprend un crédit qui est débité en fonction de la consommation réelle de l'utilisateur. Ainsi par exemple, une unité sera débitée chaque minute à ce crédit quelque soit le canal regardé. Il est possible selon les implémentations techniques, de varier l'unité de comptabilisation, soit dans la durée, soit dans la valeur du temps alloué, voire en combinant ces deux paramètres pour adapter la facturation au type de produit transmis.With regard to payment per unit of time, the security module includes a credit which is debited according to the actual consumption of the user. For example, a unit will be debited every minute at this credit regardless of the channel viewed. Depending on the technical implementations, it is possible to vary the accounting unit, either in duration or in the value of the time allocated, or even by combining these two parameters to adapt invoicing to the type of product transmitted.
Lors du décryptage des mots de contrôle, il sera vérifié si un droit associé aux conditions d'accès est présent dans l'unité de sécurité.When decrypting the control words, it will be checked whether a right associated with the access conditions is present in the security unit.
Le mot de contrôle n'est retourné sous forme décryptée à l'unité d'utilisateur que lorsque la comparaison est positive.The control word is returned to the user unit in decrypted form only when the comparison is positive.
Cette manière de faire exige que le centre de gestion connaisse l'utilisateur, son adresse physique, ses coordonnées bancaires ainsi que tous le trafic de paiement qui permet de renouveler ses droits. En effet, le principe de l'abonnement est basé sur l'obligation de renouvellement c'est-à-dire qu'un droit s'éteint de lui-même s'il n'est pas renouvelé. Cette façon de procéder évite qu'une personne qui souscrit à tous les canaux disponibles résilie son abonnement et s'arrange pour que le message de résiliation n'arrive jamais à son unité d'utilisateur. C'est pourquoi un tel droit comporte une limite dans le temps et son droit pour tous les canaux, s'il n'est pas renouvelé, s'éteint automatiquement à la fin d'un mois par exemple. On imagine donc le travail nécessaire pour suivre les milliers d'abonnés qui règlent régulièrement leurs factures et auxquels il faut envoyer un message de renouvellement chaque mois. De plus, un tel message doit être répété durant plusieurs jours car le système de gestion ne sait pas si l'unité d'utilisateur est enclenchée.This way of doing things requires that the management center know the user, his physical address, his bank details as well as all the payment traffic which allows his rights to be renewed. Indeed, the principle of the subscription is based on the obligation of renewal, that is to say that a right automatically expires if it is not renewed. This prevents a person who subscribes to all available channels from canceling their subscription and arranges for the termination message never to reach their user unit. This is why such a right has a time limit and its right for all channels, if it is not renewed, automatically expires at the end of a month for example. We can therefore imagine the work required to follow the thousands of subscribers who regularly pay their invoices and to whom a renewal message must be sent each month. In addition, such a message must be repeated for several days because the management system does not know if the user unit is switched on.
Il arrive d'ailleurs fréquemment qu'un utilisateur qui était en vacances et qui avait déclenché son appareil, se retrouve à son retour avec son unité d'utilisateur bloquée. Il faut alors qu'il appelle le centre de gestion pour qu'un message de renouvellement personnalisé lui soit envoyé.It also happens frequently that a user who was on vacation and who had activated his device, finds himself on his return with his user unit blocked. He must then call the management center so that a personalized renewal message is sent to him.
Ainsi, une grande partie des ressources et des coûts liés à la gestion d'un centre est allouée à la gestion des abonnés.Thus, a large part of the resources and costs linked to the management of a center are allocated to the management of subscribers.
Une première solution utilisant un porte-monnaie électronique est décrite dans le document US 6'282'293. La carte à puce contient un crédit qui est débité lors de l'accès à un contenu encrypte. Les informations de comptabilisation sont contenues dans le signal diffusé et permettent cette comptabilisation. Pour la recharge du crédit, l'unité d'utilisateur appelle un centre de gestion afin de procéder à l'envoi des événements consommés et recharger le crédit selon les modalités convenues avec cet usager par exemple via une carte de crédit.A first solution using an electronic purse is described in document US 6,282,293. The smart card contains a credit which is debited when accessing encrypted content. The accounting information is contained in the broadcast signal and allows this accounting. For recharging the credit, the user unit calls a management center to send the consumed events and recharge the credit according to the terms agreed with this user, for example via a credit card.
Dans un grand nombre de cas, d'une part l'unité d'usager ne dispose pas de voie de communication vers un centre de gestion et d'autre part, on souhaite éviter de répertorier tous les usagers dans un base de données avec leurs moyens de paiement. Ainsi ce document ne permet pas de résoudre les buts de l'invention, à savoir la création d'un ensemble d'unités d'utilisateurs sans voie de retour et sans connaissance du propriétaire de chaque unité.In a large number of cases, on the one hand the user unit does not have a communication channel to a management center and on the other hand, we wish to avoid listing all the users in a database with their means of payment. Thus, this document does not make it possible to resolve the aims of the invention, namely the creation of a set of user units with no return path and without knowing the owner of each unit.
Le but de la présente invention est de proposer une manière innovante d'offrir à une large clientèle l'accès à la télévision à péage tout en diminuant drastiquement les coûts liés à la gestion des abonnés.The aim of the present invention is to provide an innovative way of offering pay TV access to a large clientele while drastically reducing the costs associated with managing subscribers.
Ce but est atteint par un système comprenant un centre de gestion transmettant un flux de données encryptées par des mots de contrôle (CW), ces mots de contrôle étant inclus dans des messages de contrôle (ECM), ce flux de données étant destiné à être reçu par ou moins une unité d'utilisateur reliée à un module de sécurité identifié par une adresse unique, ce module de sécurité contenant un crédit qui est décrémenté selon l'achat de produits ou de la consommation du flux de données, caractérisé en ce que l'unité de sécurité comprend des moyens pour décrémenter le crédit d'un montant correspondant à un produit ou d'un montant correspondant à une durée, ce montant et/ou cette durée étant défini dans le message de contrôle (ECM) ou dans un message de gestion (EMM), l'utilisateur disposant de moyens indépendant de l'unité d'utilisateur pour communiquer au centre de gestion un identifiant représentatif du numéro unique et un code valeur représentant un montant de recharge du crédit, le centre de gestion comprenant des moyens pour traiter et vérifier le code valeur et pour transmettre au module de sécurité, un message encrypte comprenant l'adresse unique et le montant pour recharger le crédit.This object is achieved by a system comprising a management center transmitting a data stream encrypted by control words (CW), these control words being included in control messages (ECM), this data stream being intended to be received by or less a user unit linked to a security module identified by a unique address, this security module containing a credit which is decremented according to the purchase of products or the consumption of the data flow, characterized in that the security unit comprises means for decreasing the credit by an amount corresponding to a product or by an amount corresponding to a duration, this amount and / or this duration being defined in the control message (ECM) or in a management message (EMM), the user having means independent of the user unit for communicating to the management center an identifier representative of the unique number and a value code representing a credit recharge amount, the management comprising means for processing and verifying the value code and for transmitting to the security module, an encrypted message comprising the unique address and the amount for recharging the credit t.
Ainsi, selon l'invention, les moyens de recharge du crédit sont indépendants de l'unité d'utilisateur tout en gardant le centre de gestion comme superviseur des opérations de recharge. De plus, la transmission de ce code valeur VC permet de supprimer la facturation à l'usager car ce code valeur contient déjà les informations prouvant que l'usager à acquis le droit à cette valeur. Selon les solutions de d'état de la technique, le centre de gestion traite d'une manière indépendante le crédit du client (facturation, carte de crédit) et lui transmet via le modem, l'instruction de recharge.Thus, according to the invention, the means for recharging the credit are independent of the user unit while keeping the management center as supervisor of the recharging operations. In addition, the transmission of this VC value code eliminates billing to the user because this value code already contains information proving that the user has acquired the right to this value. According to the state of the art solutions, the management center processes the customer's credit independently (billing, credit card) and transmits the recharge instruction to him via the modem.
Selon l'invention, le code valeur est transmis selon l'un des modes décrit ci-dessous et l'instruction de recharge est envoyée dans le flux de données encryptées, dans un message de gestion par exemple.According to the invention, the value code is transmitted according to one of the modes described below and the recharging instruction is sent in the stream of encrypted data, in a management message for example.
Ce code valeur (VC) peut prendre plusieurs formes :This value code (VC) can take several forms:
1. un numéro unique est contenu sur une carte à gratter et définit un crédit pré-payé. Ces cartes sont vendues dans les magasins et comprennent une partie cachée par un couche facile à enlever avec l'ongle ou une pièce de monnaie. Le numéro ainsi révélé est un numéro unique généré par un système cryptographique, c'est-à-dire qu'il doit respecter des règles strictes quant à son format. Il n'est de ce fait pas possible (ou avec des probabilités très faibles) de générer un tel numéro qui soit reconnu comme valide par le centre de gestion. A ce numéro est associé une valeur qui est celle que l'utilisateur a payé pour acquérir cette carte. Une fois ce numéro utilisé, il n'est pas possible de le présenter à nouveau au centre de gestion.1. a unique number is contained on a scratch card and defines a prepaid credit. These cards are sold in stores and include a part hidden by a layer easy to remove with the nail or a coin. The number thus revealed is a unique number generated by a cryptographic system, that is to say that it must comply with strict rules as to its format. It is therefore not possible (or with very low probabilities) to generate such a number which is recognized as valid by the management center. This number is associated with a value which is the one that the user paid to acquire this card. Once this number has been used, it cannot be presented again to the management center.
2. un numéro de compte bancaire ou de carte de crédit et le montant de recharge. Selon les modalités acceptées par le centre de gestion et en accord avec les organismes bancaires, l'utilisateur peut transmettre son numéro de carte bancaire et du montant souhaité pour être débité de son compte. Dans cette variante, il est possible d'utiliser un module de sécurité amovible et de l'insérer dans une borne à cet effet. Cette borne permet soit de recevoir de l'argent liquide (billets par exemple) ou de lire une carte bancaire (voire une carte de crédit). Une fois que le montant souhaité par l'utilisateur a été dûment vérifié (soit par les billets introduits dans la fente de l'automate, soit par l'autorisation de l'organisme bancaire), la borne contacte le centre de gestion et un message de recharge du crédit est envoyé à la borne qui le transfère au module de sécurité. Durant cette opération, il est possible de collecter des informations sur la consommation de l'utilisateur, informations qui sont conservées dans son module de sécurité.2. a bank account or credit card number and the top-up amount. According to the terms accepted by the management center and in agreement with the banking organizations, the user can transmit his bank card number and the desired amount to be debited from his account. In this variant, it is possible to use a removable security module and to insert it into a terminal for this purpose. This terminal allows you to either receive cash (tickets for example) or read a bank card (or even a credit card). Once the amount desired by the user has been duly verified (either by the tickets inserted in the slot of the machine, or by the authorization of the banking organization), the terminal contacts the management center and a message to recharge the credit is sent to the terminal which transfers it to the security module. During this operation, it is possible to collect information on the consumption of the user, information which is stored in its security module.
3. un numéro de téléphone ou d'identificateur de téléphonie sans fil et le montant de recharge. L'utilisateur peut simplement envoyer à l'adresse du centre de gestion, le montant de recharge désiré. Dans ce message est compris automatiquement le numéro de l'expéditeur et selon les accords entre l'opérateur de téléphonie et le centre de gestion, le montant de recharge est débité sur le compte téléphonique.3. a telephone number or cordless telephone identifier and the top-up amount. The user can simply send the desired top-up amount to the address of the management center. This message automatically includes the sender's number and according to the agreements between the telephone operator and the management center, the top-up amount is debited from the telephone account.
Selon le mode opératoire choisi, l'utilisateur communique le code valeur au centre de gestion accompagné de l'identifiant de son unité d'utilisateur. Dans ce type d'application, le numéro unique du module de sécurité sera considéré comme le numéro de l'ensemble formé par l'unité de l'utilisateur et l'unité de sécurité. Pour des raisons de simplification, il est possible de générer un code simplifié représentatif du numéro unique. En effet, ce numéro unique est généralement un numéro comportant un grand nombre de digits qui sont nécessaires pour le système (date de création, version etc.) mais pas indispensable pour identifier une unité. C'est pourquoi il est prévu d'afficher sur l'unité d'utilisateur (STB) un numéro raccourci mais suffisant pour différencier chaque unité. Selon un mode particulier de réalisation, il est possible pour l'utilisateur de communiquer au centre de gestion un autre numéro en lieu et place du numéro raccourci dans une procédure d'initialisation. Il peut s'agir par exemple du numéro de téléphone de l'utilisateur. Le centre de gestion vérifie que ce nouveau numéro est bien unique et associe ce numéro au numéro unique (UA). Dès lors, il sera possible de remplacer l'identification de l'ensemble de l'utilisateur par le numéro de téléphone.Depending on the operating mode chosen, the user communicates the value code to the management center accompanied by the identifier of his user unit. In this type of application, the unique number of the security module will be considered as the number of the assembly formed by the user unit and the security unit. For reasons of simplification, it is possible to generate a simplified code representative of the unique number. Indeed, this unique number is generally a number with a large number of digits which are necessary for the system (creation date, version etc.) but not essential to identify a unit. This is why it is planned to display on the user unit (STB) a shortened number which is sufficient to differentiate each unit. According to a particular embodiment, it is possible for the user to communicate to the management center another number in place of the shortened number in an initialization procedure. For example, it could be the user's phone number. The management center checks that this new number is indeed unique and associates this number with the unique number (UA). Therefore, it will be possible to replace the identification of the entire user with the telephone number.
Pour recharger son crédit, l'utilisateur peut utiliser un serveur vocal et un téléphone classique disposant de l'envoi de signaux par DTMF. Après avoir acheté une carte valeur (solution 1 du code valeur), il appelle le serveur vocal du centre de gestion. Il est invité à introduire le numéro de l'identifiant et le code valeur apposé sur la carte.To top up their credit, the user can use a voice server and a conventional telephone with DTMF sending signals. After buying a value card (solution 1 of the value code), he calls the voice server in the management center. He is invited to enter the identifier number and the value code affixed to the card.
Cette opération prend peu de temps; le centre de gestion vérifie la conformité du code valeur et de l'identifiant et si ces données sont correctes, prépare un message à destination de cette unité d'utilisateur.This operation takes little time; the management center verifies the conformity of the value code and the identifier and, if this data is correct, prepares a message for this user unit.
Le message est transmis par le canal de diffusion sous forme encryptée et seul le module de sécurité dispose des moyens pour décrypter ce message. Chaque module de sécurité recevant ce message vérifie si le numéro unique contenu dans le message correspond à son numéro et dans la négative, l'ignore.The message is transmitted by the broadcasting channel in encrypted form and only the security module has the means to decrypt this message. Each security module receiving this message checks whether the unique number contained in the message corresponds to its number and, if not, ignores it.
Pour le module répondant à l'adresse unique (UA), le montant du crédit contenu dans ce message est ajouté au crédit restant.For the module responding to the unique address (UA), the amount of credit contained in this message is added to the remaining credit.
L'appellation centre de gestion est à comprendre au sens large. En effet, dans la pratique cette entité est subdivisée en plusieurs modules qui peuvent être situés dans des lieux différents. Nous trouvons l'unité d'encryption des messages de contrôle (ECM), l'unité d'encryption des message de gestion (EMM) en charge de recharger le crédit. Parallèlement, l'unité de traitement des codes valeur peut été située dans un établissement bancaire si l'on considère la variante 2, à savoir la connexion avec un centre de crédit ou dans les locaux d'un opérateur téléphonique si l'on considère la variante 3, à savoir l'envoi d'un message court par son téléphone portable. Une fois le code valeur reconnu et traité, une liaison sécurisée permet d'informer l'unité d'encryption des messages de gestion et d'envoyer le message de recharge du crédit à son destinataire. L'utilisateur dispose de moyens pour afficher en tout temps le crédit restant sur son téléviseur.The term management center should be understood in the broad sense. Indeed, in practice this entity is subdivided into several modules which can be located in different places. We find the control message encryption unit (ECM), the management message encryption unit (EMM) in charge of recharging the credit. At the same time, the value code processing unit can be located in a banking establishment if we consider variant 2, namely the connection with a credit center or on the premises of a telephone operator if we consider the variant 3, namely the sending of a short message by his mobile phone. Once the value code has been recognized and processed, a secure link is used to inform the encryption unit of management messages and to send the credit recharge message to its recipient. The user has the means to display the remaining credit on his television at any time.
Selon le mode utilisant le téléphone portable, un simple message court (SMS) contenant le code valeur et l'identifiant de son unité, permet de recharger son crédit. Si, de plus, l'on a remplacé son identifiant par son numéro de téléphone, seul le code valeur est à envoyer, le numéro de téléphone étant automatiquement transmis au destinataire.Depending on the mode using the mobile phone, a simple short message (SMS) containing the value code and the identifier of your unit, allows you to recharge your credit. If, in addition, its identifier has been replaced by its telephone number, only the value code is to be sent, the telephone number being automatically transmitted to the recipient.
Lorsque le crédit est suffisant dans l'unité de sécurité (SC), plusieurs modes opératoires sont possibles à savoir:When there is sufficient credit in the security unit (SC), several operating modes are possible, namely:
- abonnement impulsif: l'utilisateur décide d'utiliser tout ou partie de son crédit pour acheter un abonnement à un ou des canaux. Ainsi, un nouveau droit est créé dans l'unité pour la réception desdits canaux sans qu'une nouvelle action sur son crédit soit nécessaire.- impulsive subscription: the user decides to use all or part of his credit to buy a subscription to one or more channels. Thus, a new right is created in the unit for the reception of said channels without a new action on its credit being necessary.
- achat impulsif : l'utilisateur peut décider d'acheter une émission ou un groupe d'émission (une série ou une rétrospective) et un droit correspondant est créé dans l'unité de sécurité.- impulse purchase: the user can decide to buy a program or a group of programs (a series or a retrospective) and a corresponding right is created in the security unit.
- décomptage au fil du temps : l'utilisateur peut décider de ne payer que ce qu'il consomme réellement et le crédit est consommé selon un mode de paiement par unité de temps.- counting down over time: the user can decide to pay only what he actually consumes and the credit is consumed according to a payment method per unit of time.
Les deux premiers modes sont de préférence gérés par des messages de gestion (EMM) car ils créent un droit à l'intérieur du module de sécurité. Alors que le troisième mode peut fonctionner qu'avec les messages de contrôle (ECM) dans lesquels l'on place la valeur de l'unité ainsi que la durée acquise.The first two modes are preferably managed by management messages (EMM) because they create a right inside the security module. While the third mode can only work with control messages (ECM) in which the value of the unit is placed as well as the duration acquired.
Lorsqu'un message de contrôle (ECM) est présenté au module de sécurité, on vérifie les droits selon une hiérarchie partant du droit le plus large au plus étroit. Ainsi par exemple on vérifie premièrement si l'utilisateur possède un abonnement pour ces droits, puis, dans la négative si un droit pour achat impulsif existe et en dernier ressort, on va débiter le crédit par unité de temps. Sur la figure 1 , un exemple d'implémentation est illustré. Il s'agit de la variante 3 du code valeur. Le centre de gestion (CG) est illustré par plusieurs éléments tels qu'un opérateur téléphonique (TO), un module (ENC) d'encryption des données (DTA), un module (ECME) de contrôle des clés d'encryption (CW) en charge de générer les messages de contrôle (ECM) et un module de gestion (EMME) en charge de générer les messages de recharge du crédit vers les unités de sécurité.When a control message (ECM) is presented to the security module, the rights are checked according to a hierarchy starting from the widest right to the narrowest. So for example we check first if the user has a subscription for these rights, then, if not if a right for impulse purchase exists and as a last resort, we will debit the credit per unit of time. In FIG. 1, an example of implementation is illustrated. This is variant 3 of the value code. The management center (CG) is illustrated by several elements such as a telephone operator (TO), a data encryption module (ENC) (DTA), an encryption key control module (CW) ) in charge of generating the control messages (ECM) and a management module (EMME) in charge of generating the recharging messages from the credit to the security units.
Chaque décodeur (STB) comprend un module de sécurité (SC) qui mémorise le crédit (CR) de l'utilisateur.Each decoder (STB) comprises a security module (SC) which stores the credit (CR) of the user.
Selon l'exemple du code valeur sous la forme d'une carte à gratter, comprenant un numéro unique, l'utilisateur utilise son téléphone portable (TP) pour transmettre ce numéro unique par liaison avec l'opérateur de téléphonie (TO). Cet opérateur reçoit cette information et la transmet au module de gestion (EMME) avec le numéro de téléphone de l'utilisateur. La validité de ce numéro est vérifiée grâce à une base de données (DB) des numéros valides et si c'est la première utilisation de ce numéro, la valeur correspondante (TA) est retournée par la base de données. Ce numéro est ensuite irrévocablement invalidé.According to the example of the value code in the form of a scratch card, comprising a unique number, the user uses his mobile telephone (TP) to transmit this unique number by connection with the telephone operator (TO). This operator receives this information and transmits it to the management module (EMME) with the user's telephone number. The validity of this number is checked using a database (DB) of valid numbers and if this is the first use of this number, the corresponding value (TA) is returned by the database. This number is then irrevocably invalidated.
Grâce au numéro de téléphone fourni par l'opérateur de téléphone, le module de gestion (EMME) en déduit le numéro unique (UA) de l'unité de sécurité et un message correspondant peut être envoyé par la voie classique de transmission (câble, hertzienne, etc.). Ce message est généralement répété durant plusieurs jours. A ce propos, il est utile d'ajouter que le module de sécurité comprend des moyens pour n'exécuter le message qu'une seule fois. Ceci est assuré par un identifiant du message qui est également encrypte par des clés de transmission. Cet identifiant est mémorisé dans l'unité de sécurité dès lors qu'un tel message est reçu et exécuté. L'unité de sécurité attend désormais un identifiant différent ou plus grand.Thanks to the telephone number provided by the telephone operator, the management module (EMME) deduces therefrom the unique number (UA) of the security unit and a corresponding message can be sent by the conventional transmission channel (cable, radio, etc.). This message is usually repeated for several days. In this regard, it is useful to add that the security module includes means for executing the message only once. This is ensured by an identifier of the message which is also encrypted by transmission keys. This identifier is stored in the security unit as soon as such a message is received and executed. The security unit now expects a different or larger identifier.
Selon cette manière de procéder, la base de données conserve une trace du montant rechargé pour chaque unité de sécurité. Il est possible de vérifier la consommation de chaque unité et de détecter les tentatives de fraude. De plus, la somme des montants rechargés doit toujours être inférieure à la somme des cartes valeur en circulation. According to this way of proceeding, the database keeps track of the amount recharged for each security unit. It is possible to check the consumption of each unit and detect fraud attempts. In addition, the sum of the reloaded amounts must always be less than the sum of the value cards in circulation.

Claims

REVENDICATIONS
1. Système comprenant un centre de gestion (CAS) transmettant un flux de données encryptées par des mots de contrôle (CW), ces mots de contrôle étant inclus dans des messages de contrôle (ECM), ce flux de données étant destiné à être reçu par ou moins une unité d'utilisateur (STB) reliée à une unité de sécurité (SC) identifiée par une adresse unique (UA), cette unité de sécurité (SC) contenant un crédit (CR) qui est décrémenté selon l'achat de produits ou de la consommation du flux de données et qui peut être rechargé par un message de gestion (EMM), caractérisé en ce que l'unité de sécurité comprend des moyens pour décrémenter le crédit d'un montant (M1 ) correspondant à un produit ou d'un montant (M2) correspondant à une durée (T), ce montant (M1 , M2) et/ou cette durée (T) étant défini dans le message de contrôle (ECM) ou dans le message de gestion (EMM), l'utilisateur disposant de moyens indépendant de l'unité d'utilisateur (STB) pour communiquer au centre de gestion (CAS) un identifiant représentatif du numéro unique (UA) et un code valeur représentant un montant (TA) de recharge du crédit (CR), le centre de gestion comprenant des moyens pour traiter et vérifier le code valeur (VC) et pour transmettre à l'unité de sécurité (SC), un message encrypte comprenant l'adresse unique (UA) et le montant (TA) pour recharger le crédit (CR).1. System comprising a management center (CAS) transmitting a data stream encrypted by control words (CW), these control words being included in control messages (ECM), this data stream being intended to be received by or less a user unit (STB) linked to a security unit (SC) identified by a unique address (UA), this security unit (SC) containing a credit (CR) which is decremented according to the purchase of products or consumption of the data flow and which can be recharged by a management message (EMM), characterized in that the security unit comprises means for decrementing the credit by an amount (M1) corresponding to a product or of an amount (M2) corresponding to a duration (T), this amount (M1, M2) and / or this duration (T) being defined in the control message (ECM) or in the management message (EMM) , the user having means independent of the user unit (STB) to communicate to the management center (CAS) an identifier representative of the unique number (UA) and a value code representing an amount (TA) of credit recharge (CR), the management center comprising means for processing and verifying the value code ( VC) and to transmit to the security unit (SC), an encrypted message comprising the unique address (UA) and the amount (TA) for recharging the credit (CR).
2. Système selon la revendication 1 , caractérisé en ce que le code valeur (VC) comprend un numéro de compte bancaire ou de compte de crédit et le montant de recharge (TA).2. System according to claim 1, characterized in that the value code (VC) comprises a bank account or credit account number and the top-up amount (TA).
3. Système selon la revendication 1 , caractérisé en ce que le code valeur (VC) est un code unique et préétabli par le centre de gestion et répondant à des règles de composition cryptographiques, et en ce que le centre de gestion comprend des moyens pour vérifier ce code et en extraire la valeur qui sera créditée dans l'unité de sécurité (SC).3. System according to claim 1, characterized in that the value code (VC) is a unique code and pre-established by the management center and responding to cryptographic composition rules, and in that the management center comprises means for check this code and extract the value which will be credited in the security unit (SC).
4. Système selon la revendication 1 , dans lequel l'utilisateur dispose d'un numéro de téléphone (TN), caractérisé en ce que l'utilisateur comprend des moyens pour associer le numéro unique (UA) à son numéro de téléphone (TN) et en ce que le code valeur (VC) est transmis au centre de gestion avec le numéro de téléphone (TN), ledit centre comprenant des moyens pour transmettre le message de recherche à l'unité d'utilisateur (SC) dont le numéro unique (UA) est associé à ce numéro de téléphone.4. System according to claim 1, wherein the user has a telephone number (TN), characterized in that the user comprises means for associating the unique number (UA) with his telephone number (TN) and in that the value code (VC) is transmitted to the management center with the telephone number (TN), said center comprising means for transmitting the search message to the user unit (SC) whose unique number (UA) is associated with this telephone number.
5. Système selon l'une des revendications précédentes, caractérisé en ce que le produit est un abonnement de télévision à péage pour une durée déterminée ou une émission ou groupe d'émissions à achat impulsif. 5. System according to one of the preceding claims, characterized in that the product is a pay-TV subscription for a fixed period or a program or group of programs with impulse purchase.
PCT/IB2003/001319 2002-04-11 2003-04-09 Prepaid pay television system WO2003085959A1 (en)

Priority Applications (15)

Application Number Priority Date Filing Date Title
MXPA04009734A MXPA04009734A (en) 2002-04-11 2003-04-09 Prepaid pay television system.
BRPI0309249-6A BRPI0309249B1 (en) 2002-04-11 2003-04-09 ADVANCE PAYMENT SYSTEM FOR SUBSCRIPTION TV
DE60318416T DE60318416T2 (en) 2002-04-11 2003-04-09 TV SYSTEM WITH ADVANCE PAYMENT
US10/510,834 US7742600B2 (en) 2002-04-11 2003-04-09 Prepaid pay television system
JP2003583016A JP4331620B2 (en) 2002-04-11 2003-04-09 Prepaid pay TV system
AU2003214529A AU2003214529B2 (en) 2002-04-11 2003-04-09 Prepaid pay television system
KR1020047016114A KR100921843B1 (en) 2002-04-11 2003-04-09 Prepaid pay television system
DK03710108T DK1493268T3 (en) 2002-04-11 2003-04-09 Pre-pay TV operating system
CA2481750A CA2481750C (en) 2002-04-11 2003-04-09 Prepaid pay television system
EP03710108A EP1493268B1 (en) 2002-04-11 2003-04-09 Television system with payment in advance
IL16427003A IL164270A0 (en) 2002-04-11 2003-04-09 Prepaid pay television system
IS7463A IS2579B (en) 2002-04-11 2004-09-20 Prepaid Subscription Television System
HR20040934A HRP20040934B1 (en) 2002-04-11 2004-10-07 Prepaid pay television ssystem
TNP2004000202A TNSN04202A1 (en) 2002-04-11 2004-10-08 PRE-PAYMENT TELEVISION SYSTEM
HK05105132A HK1073039A1 (en) 2002-04-11 2005-06-21 Television system with payment in advance

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP02008061A EP1353501A1 (en) 2002-04-11 2002-04-11 Pre-pay television system
EP02008061.0 2002-04-11

Publications (1)

Publication Number Publication Date
WO2003085959A1 true WO2003085959A1 (en) 2003-10-16

Family

ID=28051775

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2003/001319 WO2003085959A1 (en) 2002-04-11 2003-04-09 Prepaid pay television system

Country Status (26)

Country Link
US (1) US7742600B2 (en)
EP (2) EP1353501A1 (en)
JP (1) JP4331620B2 (en)
KR (1) KR100921843B1 (en)
CN (1) CN100586149C (en)
AT (1) ATE383030T1 (en)
AU (1) AU2003214529B2 (en)
BR (1) BRPI0309249B1 (en)
CA (1) CA2481750C (en)
CO (1) CO5631491A2 (en)
DE (1) DE60318416T2 (en)
DK (1) DK1493268T3 (en)
ES (1) ES2299688T3 (en)
HK (1) HK1073039A1 (en)
HR (1) HRP20040934B1 (en)
IL (1) IL164270A0 (en)
IS (1) IS2579B (en)
MX (1) MXPA04009734A (en)
MY (1) MY147979A (en)
PL (1) PL371285A1 (en)
PT (1) PT1493268E (en)
RU (1) RU2316136C2 (en)
TN (1) TNSN04202A1 (en)
TW (1) TWI328968B (en)
WO (1) WO2003085959A1 (en)
ZA (1) ZA200408195B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1819163A1 (en) 2006-02-10 2007-08-15 NagraCard SA Access Control Method through Prepaid Technique
EP2172896A1 (en) * 2008-10-02 2010-04-07 Nagravision S.A. Value management method in a prepaid device
CN101212318B (en) * 2006-12-26 2010-08-18 中兴通讯股份有限公司 Value adding method in mobile digital broadcast network
US8190896B2 (en) 2004-11-19 2012-05-29 Lg Electronics Inc. Conditional access for a multimedia broadcast service using a wireless terminal
US8966518B2 (en) 2006-03-13 2015-02-24 Nagravision S.A. Method for validating access to a product by means of a security module

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1440256A (en) * 2000-05-08 2003-09-03 布雷恩斯盖特有限公司 Method and apparatus for stimulating sphenopalatine ganglion to modify properties of BBB and cerebral blood flow
US7684859B2 (en) 2002-04-25 2010-03-23 Brainsgate Ltd. Stimulation of the OTIC ganglion for treating medical conditions
US8010189B2 (en) * 2004-02-20 2011-08-30 Brainsgate Ltd. SPG stimulation for treating complications of subarachnoid hemorrhage
US9233245B2 (en) 2004-02-20 2016-01-12 Brainsgate Ltd. SPG stimulation
US8055347B2 (en) 2005-08-19 2011-11-08 Brainsgate Ltd. Stimulation for treating brain events and other conditions
US7472822B2 (en) * 2005-03-23 2009-01-06 E2Interactive, Inc. Delivery of value identifiers using short message service (SMS)
KR100716900B1 (en) * 2005-05-12 2007-05-10 에스케이 텔레콤주식회사 System and method for protection of broadcasting and multimedia contents
KR100848326B1 (en) * 2006-12-19 2008-07-24 한국전자통신연구원 Apparatus and Method for transmitting/receiving data in terrestrial DMB conditional access system
EP1965342A1 (en) * 2007-02-27 2008-09-03 Nagracard S.A. Method of conducting a transaction between a payment module and a security module
US7860569B2 (en) 2007-10-18 2010-12-28 Brainsgate, Ltd. Long-term SPG stimulation therapy for prevention of vascular dementia
KR100911296B1 (en) * 2007-12-11 2009-08-11 티유미디어 주식회사 Prepaid broadcasting receiver and subscriber management system and method thereof in digital multimedia broadcasting service
KR101531269B1 (en) * 2009-02-19 2015-06-25 삼성전자주식회사 Digital transmission apparatus and method, and digital reception apparatus
EP2373018B1 (en) * 2010-03-05 2012-05-09 Nagravision S.A. A method for controlling access to a plurality of channels by a receiver/decoder
EP2530944A1 (en) * 2011-05-31 2012-12-05 Alcatel-Lucent España, S.A. Method for authorising
RU2481638C1 (en) * 2011-12-28 2013-05-10 Закрытое акционерное общество "Лаборатория Касперского" System and method to account payments on credit with feedback for control of device bought on credit
CN103118080B (en) * 2013-01-18 2016-09-21 深圳市酷开网络科技有限公司 Downloading management method based on Android browser and device
CN103327373A (en) * 2013-06-26 2013-09-25 卢泳 Billing device and billing method of wireless digital television terminal
CN114584812B (en) * 2020-12-01 2024-04-05 聚好看科技股份有限公司 Server and media resource pre-selling method

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5144663A (en) * 1986-04-18 1992-09-01 Kudelski S.A. Fabrique D'engregistreurs Nagra Method of interactive communication between a subscriber and a decoder of a system of pay-television and decoder thereof
EP0757337A2 (en) * 1995-08-02 1997-02-05 Bayer Ag Unit, composed of data memory card and a reading/writing device
US6126069A (en) * 1996-02-09 2000-10-03 Alcatel Chip card, method and system for using and paying for services
WO2001052124A2 (en) * 2000-01-13 2001-07-19 Scm Microsystems Gmbh Remote e-purse payment system
US6282293B1 (en) * 1994-10-04 2001-08-28 Hitachi, Ltd. System and method for charging fee for video information

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US682293A (en) * 1901-02-27 1901-09-10 Edward J Prest Non-refillable bottle.
US4484217A (en) 1982-05-11 1984-11-20 Telease, Inc. Method and system for remote reporting, particularly for pay television billing
AU559311B2 (en) * 1984-02-15 1987-03-05 Matsushita Electric Industrial Co., Ltd. Pay tv charge/time data display
US4907273A (en) * 1984-10-12 1990-03-06 Wiedemer John D High security pay television system
US5155680A (en) * 1986-10-24 1992-10-13 Signal Security Technologies Billing system for computing software
DE69532028T2 (en) * 1994-12-13 2004-06-24 Mitsubishi Corp. Encryption system for secure electronic transactions
JPH08287653A (en) * 1995-04-12 1996-11-01 Fujitsu Ltd Optical recording medium
FR2745970B1 (en) 1996-03-07 1998-08-07 France Telecom PREPAYMENT METHOD FOR CONSUMPTION OF TELEPHONE COMMUNICATIONS
DE19846452A1 (en) * 1998-10-08 1999-12-16 Siemens Ag Access control method for access-restricted system e.g. for mobile radio and pay TV-system
US20010027558A1 (en) * 2000-03-31 2001-10-04 Marco Sasselli Method for managing subscriber credits in a paytv system
GB2366942A (en) * 2000-09-08 2002-03-20 Motorola Inc Information delivery system and method therefor
US20020164036A1 (en) * 2000-12-12 2002-11-07 Philippe Stransky Certification of transactions

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5144663A (en) * 1986-04-18 1992-09-01 Kudelski S.A. Fabrique D'engregistreurs Nagra Method of interactive communication between a subscriber and a decoder of a system of pay-television and decoder thereof
US6282293B1 (en) * 1994-10-04 2001-08-28 Hitachi, Ltd. System and method for charging fee for video information
EP0757337A2 (en) * 1995-08-02 1997-02-05 Bayer Ag Unit, composed of data memory card and a reading/writing device
US6126069A (en) * 1996-02-09 2000-10-03 Alcatel Chip card, method and system for using and paying for services
WO2001052124A2 (en) * 2000-01-13 2001-07-19 Scm Microsystems Gmbh Remote e-purse payment system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8190896B2 (en) 2004-11-19 2012-05-29 Lg Electronics Inc. Conditional access for a multimedia broadcast service using a wireless terminal
EP1819163A1 (en) 2006-02-10 2007-08-15 NagraCard SA Access Control Method through Prepaid Technique
WO2007090812A1 (en) * 2006-02-10 2007-08-16 Nagracard S.A. Prepaid access control method
US8966518B2 (en) 2006-03-13 2015-02-24 Nagravision S.A. Method for validating access to a product by means of a security module
CN101212318B (en) * 2006-12-26 2010-08-18 中兴通讯股份有限公司 Value adding method in mobile digital broadcast network
EP2172896A1 (en) * 2008-10-02 2010-04-07 Nagravision S.A. Value management method in a prepaid device
WO2010037863A1 (en) * 2008-10-02 2010-04-08 Nagravision S.A. Value management method in a prepaid device

Also Published As

Publication number Publication date
TW200307462A (en) 2003-12-01
CA2481750A1 (en) 2003-10-16
IS7463A (en) 2004-09-20
DK1493268T3 (en) 2008-05-19
CN1647502A (en) 2005-07-27
RU2004129295A (en) 2005-05-27
MY147979A (en) 2013-02-28
HRP20040934A8 (en) 2009-10-31
HRP20040934A2 (en) 2005-02-28
IS2579B (en) 2010-02-15
EP1493268B1 (en) 2008-01-02
HRP20040934B1 (en) 2009-10-31
CN100586149C (en) 2010-01-27
MXPA04009734A (en) 2004-12-13
TNSN04202A1 (en) 2007-03-12
EP1493268A1 (en) 2005-01-05
AU2003214529A1 (en) 2003-10-20
RU2316136C2 (en) 2008-01-27
BR0309249A (en) 2005-02-09
JP4331620B2 (en) 2009-09-16
HK1073039A1 (en) 2005-09-16
KR20040099421A (en) 2004-11-26
PL371285A1 (en) 2005-06-13
BRPI0309249B1 (en) 2018-03-13
DE60318416T2 (en) 2009-01-08
CO5631491A2 (en) 2006-04-28
US7742600B2 (en) 2010-06-22
ATE383030T1 (en) 2008-01-15
CA2481750C (en) 2012-01-03
ES2299688T3 (en) 2008-06-01
EP1353501A1 (en) 2003-10-15
PT1493268E (en) 2008-04-09
DE60318416D1 (en) 2008-02-14
TWI328968B (en) 2010-08-11
ZA200408195B (en) 2006-07-26
KR100921843B1 (en) 2009-10-13
AU2003214529B2 (en) 2007-11-29
IL164270A0 (en) 2005-12-18
JP2005528020A (en) 2005-09-15
US20050177514A1 (en) 2005-08-11

Similar Documents

Publication Publication Date Title
EP1493268B1 (en) Television system with payment in advance
AU2000265520B2 (en) Method, communication system and receiver device for the billing of access controlled programmes and/or data from broadcast transmitters
FR2716064A1 (en) Method and system for distributing signals to subscribers in good standing
EP1050025A2 (en) Method for transmitting data and implementing server
EP0616714A1 (en) Data processing system using a set of memory cards
EP1576818B1 (en) Method of managing the display of event specifications with conditional access
EP1474925B1 (en) Method for controlling the billing of a broadcast service by units of time
EP1819163A1 (en) Access Control Method through Prepaid Technique
WO2002014990A1 (en) Distribution of media content, with automatic deletion
EP2747444A1 (en) Method for accessing a service offered by a remote server by using a QR code
EP1994750B1 (en) Method for validating access to a product by a security module
EP2172896A1 (en) Value management method in a prepaid device
EP1965342A1 (en) Method of conducting a transaction between a payment module and a security module
EP1590960B1 (en) Method for storing and transmitting data generated by a security module
WO2002003694A1 (en) System for controlling online and offline access to digital data using a software key server
FR2831297A1 (en) Method of provision of service by service provider over communication network, uses secret key sent to user to encrypt part of offer of service which is returned to provider as evidence of correct identification of user
FR2750275A1 (en) Distributed telematic system management method
MXPA00007678A (en) Interactive gaming system
EP2297954A1 (en) Updating of entitlements to access a protected audiovisual content

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 1-2004-501607

Country of ref document: PH

WWE Wipo information: entry into national phase

Ref document number: 164270

Country of ref document: IL

WWE Wipo information: entry into national phase

Ref document number: PA/a/2004/009734

Country of ref document: MX

WWE Wipo information: entry into national phase

Ref document number: P20040934A

Country of ref document: HR

Ref document number: 2481750

Country of ref document: CA

WWE Wipo information: entry into national phase

Ref document number: 1020047016114

Country of ref document: KR

Ref document number: 2003583016

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 200408195

Country of ref document: ZA

Ref document number: 20038081849

Country of ref document: CN

Ref document number: 3119/DELNP/2004

Country of ref document: IN

WWE Wipo information: entry into national phase

Ref document number: 10510834

Country of ref document: US

Ref document number: 2003214529

Country of ref document: AU

WWE Wipo information: entry into national phase

Ref document number: 2003710108

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2004129295

Country of ref document: RU

Kind code of ref document: A

WWP Wipo information: published in national office

Ref document number: 1020047016114

Country of ref document: KR

WWP Wipo information: published in national office

Ref document number: 2003710108

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2003214529

Country of ref document: AU

Date of ref document: 20030409

Kind code of ref document: B

WWG Wipo information: grant in national office

Ref document number: 2003710108

Country of ref document: EP